In this advisory, we will address the core facts regarding the recently disclosed security vulnerability in the Apache log4j project, which has been ...
Here at Tidelift, we ❤️ Slack. As a remote first team, we have used Slack as our primary communication tool since the earliest conversations amongst ...
Many people know that Google uses a single repository, the monorepo, to store all internal source code. The Google monorepo has been blogged about, ...
While Tidelift has been a remote-first company from the beginning, our culture has always involved regularly getting people together in person. ...
Despite some indications to the contrary where I live in the northeast US, it is finally spring in the northern hemisphere—which many people ...
Npm is in the spotlight right now thanks to the company’s acquisition by GitHub. The free npm Registry and Node package manager support more than 11 ...
Over the past few weeks, companies employing millions of workers have had to figure out how they can make remote work work. Organizations across the ...
We believe that working with maintainers to create coordinated security vulnerability policies is important. Why? Here’s one story to illustrate.
If you aren’t using open source components to build your apps, you’re not living in 2019. Our research suggests 92% of professional applications are ...
